GLSA-200501-37 : GraphicsMagick: PSD decoding heap overflow

The remote Gentoo host is missing one or more security-related
patches.

Description :

The remote host is affected by the vulnerability described in GLSA-200501-37
(GraphicsMagick: PSD decoding heap overflow)

Andrei Nigmatulin discovered that handling a Photoshop Document
(PSD) file with more than 24 layers in ImageMagick could trigger a heap
overflow (GLSA 200501-26). GraphicsMagick is based on the same code and
therefore suffers from the same flaw.

Impact :

An attacker could potentially design a malicious PSD image file to
cause arbitrary code execution with the permissions of the user running
GraphicsMagick.

Training & Certification

The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.